From aaccecf5ba0c5dfda49ded1e031d865da8496429 Mon Sep 17 00:00:00 2001 From: cmsassot Date: Tue, 26 Mar 2024 10:50:58 +0100 Subject: [PATCH] test --- .../resources/hydra-oidc-deployment.yaml | 16 +++++------ .../resources/hydra-sql-deployment.yaml | 16 +++++------ .../hydra-dispatcher-deployment.yaml | 28 +++++++++++++------ 3 files changed, 36 insertions(+), 24 deletions(-) diff --git a/components/hydra-oidc/resources/hydra-oidc-deployment.yaml b/components/hydra-oidc/resources/hydra-oidc-deployment.yaml index e4d1e7e..caed24d 100644 --- a/components/hydra-oidc/resources/hydra-oidc-deployment.yaml +++ b/components/hydra-oidc/resources/hydra-oidc-deployment.yaml @@ -46,10 +46,10 @@ spec: - configMapRef: name: hydra-oidc-env resources: {} - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 1000 + # securityContext: + # runAsNonRoot: true + # runAsGroup: 1000 + # runAsUser: 1000 - image: reg.cadoles.com/cmsassot/hydra-oidc-test:latest imagePullPolicy: Always @@ -94,8 +94,8 @@ spec: - name: CADDY_APP_ROOT_PUBLIC value: "/app/public/" resources: {} - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 1000 + # securityContext: + # runAsNonRoot: true + # runAsGroup: 1000 + # runAsUser: 1000 restartPolicy: Always diff --git a/components/hydra-sql/resources/hydra-sql-deployment.yaml b/components/hydra-sql/resources/hydra-sql-deployment.yaml index c48b87c..cc41797 100644 --- a/components/hydra-sql/resources/hydra-sql-deployment.yaml +++ b/components/hydra-sql/resources/hydra-sql-deployment.yaml @@ -36,10 +36,10 @@ spec: initialDelaySeconds: 10 periodSeconds: 30 resources: {} - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 1000 + # securityContext: + # runAsNonRoot: true + # runAsGroup: 1000 + # runAsUser: 1000 envFrom: - configMapRef: name: hydra-sql-env @@ -98,10 +98,10 @@ spec: - name: CADDY_APP_ROOT_PUBLIC value: "/app/public/" resources: {} - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 1000 + # securityContext: + # runAsNonRoot: true + # runAsGroup: 1000 + # runAsUser: 1000 ports: - containerPort: 8080 volumeMounts: diff --git a/resources/hydra-dispatcher/resources/hydra-dispatcher-deployment.yaml b/resources/hydra-dispatcher/resources/hydra-dispatcher-deployment.yaml index 7ad1fc7..b38bc16 100644 --- a/resources/hydra-dispatcher/resources/hydra-dispatcher-deployment.yaml +++ b/resources/hydra-dispatcher/resources/hydra-dispatcher-deployment.yaml @@ -48,10 +48,10 @@ spec: - mountPath: /app/config/hydra name: hydra-dispatcher-apps resources: {} - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 1000 + # securityContext: + # runAsNonRoot: true + # runAsGroup: 1000 + # runAsUser: 1000 - image: reg.cadoles.com/cmsassot/hydra-dispatcher-test:latest imagePullPolicy: Always name: hydra-dispatcher-nginx @@ -95,12 +95,24 @@ spec: ports: - containerPort: 8080 resources: {} - securityContext: - runAsNonRoot: true - runAsGroup: 1000 - runAsUser: 1000 + volumeMounts: + - name: caddy-data + mountPath: /tmp/caddy + - name: caddy-var + mountPath: /var/caddy + # securityContext: + # runAsNonRoot: true + # runAsGroup: 1000 + # runAsUser: 1000 restartPolicy: Always volumes: - name: hydra-dispatcher-apps configMap: name: hydra-dispatcher-apps + - name: caddy-data + emptyDir: + sizeLimit: 128Mi + - name: caddy-var + emptyDir: + sizeLimit: 256Mi +